Bonjour,

Je suis infectée par Backdoor.Win32.SdBot.akt. Un fichier système est infecté.

J'ai éliminé les fichiers sur le disque D, mais le premier fichier détécté est plus inquiétant...

voici le rapport de Kaspersky :



KASPERSKY ON-LINE SCANNER REPORT
Friday, February 24, 2006 7:56:57 AM
Operating System: Microsoft Windows XP Professional, Service Pack 2 (Build 2600)
Kaspersky On-line Scanner version: 5.0.78.0
Kaspersky Anti-Virus database last update: 23/02/2006
Kaspersky Anti-Virus database records: 167390


Scan Settings
Scan using the following antivirus database standard
Scan Archives true
Scan Mail Bases true

Scan Target My Computer
A:\
C:\
D:\
E:\
F:\
Z:\

Scan Statistics
Total number of scanned objects 62553
Number of viruses found 6
Number of infected objects 9
Number of suspicious objects 0
Duration of the scan process 02:20:37

Infected Object Name Virus Name Last Action
C:\System Volume Information\_restore{813A0B4A-EB29-4202-B455-DD2D1441210C}\R­P71\A0011389.exe Infected: Backdoor.Win32.SdBot.akt skipped

D:\COPIEdeC\Documents and Settings.zip/All Users/Application Data/Symantec/Norton AntiVirus Corporate Edition/7.5/Quarantine/02D80000.VBN Infected: Exploit.Java.ByteVerify skipped

D:\COPIEdeC\Documents and Settings.zip/All Users/Application Data/Symantec/Norton AntiVirus Corporate Edition/7.5/Quarantine/02E00000.VBN Infected: Trojan.Java.ClassLoader.Dummy.d skipped

D:\COPIEdeC\Documents and Settings.zip/All Users/Application Data/Symantec/Norton AntiVirus Corporate Edition/7.5/Quarantine/02E00001.VBN Infected: Exploit.Java.ByteVerify skipped

D:\COPIEdeC\Documents and Settings.zip/All Users/Application Data/Symantec/Norton AntiVirus Corporate Edition/7.5/Quarantine/26940000.VBN/Matrix.class Infected: Trojan-Downloader.Java.OpenStream.c skipped

D:\COPIEdeC\Documents and Settings.zip/All Users/Application Data/Symantec/Norton AntiVirus Corporate Edition/7.5/Quarantine/26940000.VBN/Counter.class Infected: Trojan.Java.ClassLoader.h skipped

D:\COPIEdeC\Documents and Settings.zip/All Users/Application Data/Symantec/Norton AntiVirus Corporate Edition/7.5/Quarantine/26940000.VBN/Parser.class Infected: Trojan.Java.ClassLoader.d skipped

D:\COPIEdeC\Documents and Settings.zip/All Users/Application Data/Symantec/Norton AntiVirus Corporate Edition/7.5/Quarantine/26940000.VBN Infected: Trojan.Java.ClassLoader.d skipped

D:\COPIEdeC\Documents and Settings.zip ZIP: infected - 7 skipped

Scan process completed.

Un dossier système est infecté.
C:\System Volume Information\_restore{813A0B4A-EB29-4202-B455-DD2D1441210C}\R­P71\A0011389.exe
Quelle est la marche à suivre pour le supprimer ??
De plus, je ne peux pas acceder au répertoire System volume Information... pourant je suis root, mais le menu propriétés ne me propose qu'un' 'lecture seule'.

Comment faire ?

Merci d'avance de votre aide.
Barbara.

Configuration: XP